你怎么能确切地知道什么不安全的项目导致浏览器警告混合安全和不安全的项目？ [英] How can you tell exactly what insecure items are causing a browser to warn about mixed secure and insecure items?

问题描述

使用FireBug，我可以看到每个请求都是 https {/ code>。

在Chrome中，我在地址栏中将 https 划掉。

我在Chrome中查看源代码，然后运行这个正则表达式 / http（？！s）/ ，但唯一发现的是 href 属性的一些外部链接和文档类型和 http-equiv 元标签。

使用Chrome浏览器的资源跟踪 显示所有请求都是 https 。 这包括Google Analytics ，来自Google的CDN和Facebook的脚本。

请求或任何东西进一步我可以尝试吗？

解决方案

我发现即使在没有混合的情况下，我也会收到Chrome中的混合内容内容，如果 sometime 在会话期间混合内容已经在域名中遇到。

（这里还提到：为什么Chrome报告安全/不安全警告时没有其他浏览器不是？）

In Firefox, I view my site and get no warnings about insecure mixed content.

Using FireBug, I can see that every request is https.

In Chrome, I get the https crossed out in the address bar.

I viewed source in Chrome and then ran this regex /http(?!s)/ but the only things it found were the href attributes for some external links and the doc type and http-equiv meta tags.

Using Chrome's Resource Tracking revealed all requests were https too.

This includes Google Analytics, jQuery from Google's CDN and Facebook like scripts.

Is there any specific tool I can use to show non https requests, or anything further I can try?

解决方案

I found that I get the "mixed content"-warning in Chrome even when there is no mixed content, if sometime during the session mixed content was already encountered on the domain.

(Also mentioned here: Why is Chrome reporting a secure / non secure warning when no other browsers aren't?)

这篇关于你怎么能确切地知道什么不安全的项目导致浏览器警告混合安全和不安全的项目？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！